17-08-2021

Pgp Mac

Part 0 – Introduction

A project to bring GnuPG to Mac OS X with a nice front end and inter application services. Mac GNU Privacy Guard. I gladly may announce that a new and more active group has taken over the projects. Part 0 – Introduction. Here’s my basic guide for PGP on OS X. The OS in question is OS X 10.9. Apple security advisories are signed with the Apple Product Security PGP key. Sensitive security information may be encrypted to this key when communicating with Apple Product Security. As a good security practice, you should validate PGP keys you receive, and not trust keys that cannot be validated.

Here’s my basic guide for PGP on OS X. The OS in question is OS X 10.9 Mavericks, but it should still work for other versions. As for the tool itself, we’ll be using GPG Suite Beta 5. This is my first time using OS X in… years. If you see anything I’m doing wrong, or could be done easier, feel free to correct me in the comments.

If you’ve done your research, you’ll see it’s not recommended to do anything darknet related on OS X, but I’m not going to go over the details here. You’ve obviously made your decision.

Part 1 – Installing the software

Like I said above, we’ll be using GPG Suite Beta 5. If you’re curious and want to see the source code, you can do so here.

  1. Head on over to https://gpgtools.org, and download ‘GPG Suite Beta 5′
  2. Open the file you downloaded, you should see this screen. Double click on ‘Install’
  3. Follow the installation process. If successful, you should see this screen. You can now close the window

Part 2 – Creating your keypair

GPG Suite actually makes this a super simple process. Just like the Linux guide, we’ll be using 4096 bit length for encryption.

  1. Open up GPG Keychain, you should be greeted by this beautiful window
  2. Click ‘New’ at the top left of the window
  3. You should see a small popup. Click the arrow beside ‘Advanced options’, make sure the key length is 4096. For our purposes, we’ll uncheck ‘key expires’. Put your username where it says ‘full name’, fill out what you want for email, and create a secure passphrase. Check the picture for an example on how to fill it out. When complete, click ‘Generate key’
  4. GPG Keychain will begin generating your key. Move the mouse around, mash keys in a text editor, have something downloading. Do random stuff to create entropy for a secure key.
  5. annndddddd we’re done!

Part 3 – Setting up the environment

This is where OS X differs from other platforms. The suite itself doesn’t provide a window to encrypt/decrypt messages, so we need to enable some options.

  1. Go into system preferences, open up ‘Keyboard’
  2. You should see this window. Click the ‘Keyboard Shortcuts’ tab at the top, then ‘Services’ in the left pane. Scroll down in the right pane to the subsection labeled ‘Text’, and to the OpenPGP options. Here you can create keyboard shortcuts. We’ll uncheck everything OpenPGP that’s under ‘Text’, and delete their shortcuts. Now we’ll enable ‘Decrypt’, ‘Encrypt’, and ‘Import key’. Create keyboard shortcuts for these if you wish. Check the picture to make sure you’re doing everything correctly. You can now close the window.

Part 4 – Obtaining your public key

This part is super simple.

  1. Open up GPG Keychain, select your key
  2. At the top of the window, click ‘Export’
  3. Give it a name, make sure ‘include secret key in exported file’ is unchecked, and click ‘save’
  4. Open your text editor of choice, browse to where you saved the key, open it
  5. There it is. Copy and paste this on your market profile to make it easier for people to contact you

Part 5 – Obtaining your private key

Again, super simple.

  1. Open up GPG Keychain, select your key
  2. At the top of the window, click ‘Export’
  3. Keep the file name it gives you, check ‘Include secret key in exported file’, then click save

Keep this file in a safe place, and don’t forget your passphrase. You’re fucked without it!

Part 6 – Importing a public key

This is really easy.

  1. Find the key you want to import.
  2. Copy everything from ‘—–BEGIN PGP PUBLIC KEY BLOCK—–‘ to ‘—–END PGP PUBLIC KEY BLOCK—–‘
  3. Paste it into your favourite text editor, highlight everything, right click, go to ‘Services’, then ‘OpenPGP: Import key’
  4. You’ll see this window pop up confirming the key has been imported, click ‘Ok’
  5. Open up GPG Keychain just to confirm the key is there
Mac

Part 7 – Importing a private key

Again, really easy.

  1. Open GPG Keychain, click ‘Import’ at the top
  2. Browse to where your key is, click it, then click ‘Open’. It should have a .asc file extension
  3. You’ll see this pop up confirming your key has been imported. Click ‘Close’

Part 8 – Encrypting a message

  1. Open your text editor of choice, write your message
  2. Highlight the message, right click, ‘Services’, ‘OpenPGP: Encrypt’
  3. A window should appear. Select who you’re sending it to, sign it with your key if you wish, click ‘Ok’
  4. Copy everything, and send it to the recipient

Openpgp Mac

Part 9 – Decrypting a message

Pretty much the same process as encrypting

  1. Open your text editor of choice, paste the message
  2. Highlight everything, right click, ‘Services’, ‘OpenPGP: Decrypt’
  3. A window should pop up. Enter your passphrase, then click ‘Ok’
  4. aannnddddd there’s your message

Part 10 – Conclusion

That wasn’t too hard, was it? Like I said in the intro, you shouldn’t be using OS X for DNM activities due to privacy issues, but I won’t go into it. This took forever to complete because OS X is a bitch to get running properly in a virtual machine. A guide for Windows will be coming next week!

Shortlink: drk.li/472

Pgp Mac Command Line

Due to the sensitive nature of security information, Apple provides a method for you to:

Pgp Mac Os

  • Verify the authenticity of security notifications
  • Encrypt messages to send to Apple via product-security@apple.com

1. Obtain PGP software

You can obtain a version of GPG Suite from GPGTools. Additionally, GnuPG is available as freeware.

2. Apple Product Security key

This is our PGP key which is valid until August 12, 2021.
Key ID: 627A8E30
Key Type: RSA
Expires: 8/12/21
Key Size: 4096/4096
Fingerprint: 6D44 5CCC 7B35 4CFD 3B54 87EE 65CB 1BB9 627A 8E30
UserID: Apple Product Security <product-security@apple.com>

Pgp Macon Ga

The Apple PGP key has an operational life span of one year. When we generate a new key, it will be available from this web page. Our previous PGP keys are archived to facilitate the validation of previously-signed messages.

3. Check our PGP signature on mail messages and documents

Documents developed by the Apple Product Security team are signed with the Apple PGP key. We encourage you to check the signature to ensure that the document was indeed written by our staff and has not been changed.

Pgp Mac Outlook

Note for users of the security-announce mailing list:
Some mail programs cause changes to messages, resulting in an indication that the PGP signature is not good. Critical information will also be posted to our web site along with a PGP signature, providing you with a confirmation of authenticity.

4. Encrypting sensitive information

Pgp Mac Mail

When sending sensitive security information by email, please encrypt it.